CVE-2011-2462 | Vulnerability in U3D component in Adobe Reader and Acrobat

Export page to PDF

Vulnerability in U3D component in Adobe Reader and Acrobat

CVE ID

CVE-2011-2462

Severity

Critical

Description

A critical vulnerability has been identified in the 10.1.1 version of Adobe Reader X and earlier versions for Windows and Macintosh, Adobe Reader 9.4.6 and earlier 9.x versions for UNIX, and Adobe Acrobat X(10.1.1) and earlier versions for Windows and Macintosh. When exploited this vulnerability could cause a crash and potentially allow an attacker to take control of the affected system.

Solution

Trend Micro Deep Security shields the following vulnerabilities using the specified rules. Trend Micro customers using OfficeScan with the Intrusion Defense Firewall plugin are also protected from attacks using these vulnerabilities.

Adobe Bulletin ID	Vulnerability ID	Rule Number & Title	Deep Security Pattern Version	Deep Security Pattern Release Date
APSA11-04	CVE-2011-2462	1004871 - Adobe Acrobat Reader U3D Component Memory Corruption Vulnerability (CVE-2011-2462)	11-035	Dec 13, 2011
APSA11-04	CVE-2011-2462	1004873 - Adobe Acrobat Reader U3D Component Memory Corruption (CVE-2011-2462)	11-035	Dec 13, 2011

Patch: http://www.adobe.com/support/security/advisories/apsa11-04.html

Affected software and version:

Adobe Reader X (10.1.1) and earlier 10.x versions for Windows and Macintosh
Adobe Reader 9.4.6 and earlier 9.x versions for Windows
Macintosh and UNIX
Adobe Acrobat X (10.1.1) and earlier 10.x versions for Windows and Macintosh
Adobe Acrobat 9.4.6 and earlier 9.x versions for Windows and Macintosh

Product Support

Go To:

Popular Products

More Support

Go to:

Popular Products

Threat Encyclopedia

Description

Solution